wiki-plugin-shoppe 0.0.21 → 0.0.23

package/CLAUDE.md

@@ -17,13 +17,25 @@ The first 3 emoji are fixed per wiki instance (`SHOPPE_BASE_EMOJI`, default `
 ### Tenant Lifecycle
 
 1. Wiki owner registers a tenant: `POST /plugin/shoppe/register { name }`
-   - Plugin creates a Sanora user for the tenant
-   - Generates emojicode, stores `{ uuid, emojicode, name, keys }` in `.shoppe-tenants.json`
-   - Returns `{ uuid, emojicode }` — tenant puts these in their `manifest.json`
-2. Tenant builds their archive (see format below)
-3. Tenant drags archive onto the wiki plugin widget
-4. Plugin verifies `uuid + emojicode`, processes all goods into Sanora
-5. Shoppe accessible at `/plugin/shoppe/:uuid` or `/plugin/shoppe/:emojicode`
+   - Plugin creates a Sanora user + an Addie user for the tenant
+   - Generates emojicode + owner keypair (secp256k1 via sessionless)
+   - Stores `{ uuid, emojicode, name, keys, addieKeys, ownerPubKey }` in `~/.shoppe/tenants.json`
+   - Owner private key is delivered once via a single-use starter bundle download (bundleToken)
+2. Tenant runs `node shoppe-sign.js init` — moves private key to `~/.shoppe/keys/<uuid>.json`
+3. Tenant runs `node shoppe-sign.js payouts` — completes Stripe Connect Express onboarding
+4. Tenant builds their archive and runs `node shoppe-sign.js` to sign and zip
+5. Tenant drags the zip onto the wiki plugin widget
+6. Plugin verifies `uuid + emojicode + owner signature`, processes all goods into Sanora
+7. Shoppe accessible at `/plugin/shoppe/:uuid` or `/plugin/shoppe/:emojicode`
+
+### shoppe-sign.js commands
+
+| Command | Description |
+|---------|-------------|
+| `node shoppe-sign.js init` | Move `shoppe-key.json` to `~/.shoppe/keys/<uuid>.json` (no npm needed) |
+| `node shoppe-sign.js` | Sign manifest + create upload.zip |
+| `node shoppe-sign.js orders [wiki-url]` | Generate signed orders URL (5-min expiry), open in browser |
+| `node shoppe-sign.js payouts [wiki-url]` | Generate signed payouts URL, redirect to Stripe Connect onboarding |
 
 ## Archive Format
 
@@ -86,7 +98,24 @@ my-shoppe.zip
 {
   "uuid": "your-uuid-from-registration",
   "emojicode": "🛍️🎨🎁🌟💎🐉📚🔥",
-  "name": "My Shoppe"
+  "name": "My Shoppe",
+  "keywords": ["digital goods", "indie creator", "music", "books"]
+}
+```
+
+`keywords` is optional. When present, it is stored in the tenant record and rendered as a `<meta name="keywords">` tag on the main shoppe page.
+
+`redirects` is optional. Each key is a content category (`books`, `music`, `posts`, `albums`, `products`, `appointments`, `subscriptions`) and the value is an external URL. When set, clicking any card in that category sends visitors to that URL instead of the plugin's built-in purchase/download pages. Example:
+
+```json
+{
+  "uuid": "...",
+  "emojicode": "...",
+  "name": "My Shoppe",
+  "redirects": {
+    "books": "https://myauthorsite.com/books",
+    "music": "https://mybandcamp.com"
+  }
 }
 ```
 
@@ -97,10 +126,13 @@ my-shoppe.zip
   "title": "My Novel",
   "description": "A gripping tale",
   "price": 9,
-  "cover": "front.jpg"
+  "cover": "front.jpg",
+  "keywords": ["fiction", "thriller", "indie author"]
 }
 ```
 
+`keywords` is optional on all `info.json` files. Values are stored as `kw:`-prefixed entries in Sanora's product tags and rendered as `<meta name="keywords">` on that product's pages.
+
 `cover` pins a specific image file as the Sanora cover image. If omitted, the first image in the folder is used.
 
 ### music/*/info.json (albums)
@@ -207,9 +239,21 @@ The hero image is resolved automatically: `hero.jpg` or `hero.png` is used if pr
 | `POST` | `/plugin/shoppe/:id/purchase/complete` | Public | Record completed purchase |
 | `GET`  | `/plugin/shoppe/:id/download/:title` | Public | Ebook download page |
 | `GET`  | `/plugin/shoppe/:id/post/:title` | Public | Post reader |
+| `GET`  | `/plugin/shoppe/:id/orders` | Owner (signed URL) | Order history page |
+| `GET`  | `/plugin/shoppe/:id/payouts` | Owner (signed URL) | Stripe Connect Express onboarding |
+| `GET`  | `/plugin/shoppe/:id/payouts/return` | Public | Post-Stripe-Connect confirmation page |
 
 `:id` accepts either UUID or emojicode.
 
+## Payment / Transfer Flow
+
+1. Buyer calls `POST /purchase/intent` → shoppe creates a buyer Addie user and calls `PUT /user/:buyerUuid/processor/stripe/intent` on Addie → returns `{ clientSecret, publishableKey }`
+2. Stripe.js confirms payment client-side (no redirect)
+3. Client extracts `paymentIntentId` from `clientSecret` (`clientSecret.split('_secret_')[0]`) and posts to `POST /purchase/complete` with `paymentIntentId`
+4. Server records the order in Sanora, then fires a **fire-and-forget** `POST ${addieUrl}/payment/${paymentIntentId}/process-transfers` — Addie splits the payment and routes it to the tenant's Stripe account (no auth required on this Addie endpoint)
+
+**Important:** Transfers only flow to the owner after `node shoppe-sign.js payouts` has been run and Stripe Connect onboarding is complete.
+
 ## Configuration
 
 ```bash

package/client/shoppe.js

@@ -17,7 +17,7 @@
             .sw-step-body { font-size: 14px; line-height: 1.5; color: #333; }
             .sw-step-body strong { color: #1d1d1f; }
             .sw-step-body code { background: #e8e8ed; border-radius: 4px; padding: 1px 5px; font-size: 12px; }
-            .sw-tree { font-family: monospace; font-size: 12px; background: #1d1d1f; color: #a8f0a8; border-radius: 8px; padding: 14px 16px; line-height: 1.7; white-space: pre; overflow-x: auto; margin-top: 8px; }
+            .sw-tree { font-family: monospace; font-size: 12px; background: #1d1d1f; color: #a8f0a8; border-radius: 8px; padding: 14px 16px; line-height: 1.7; white-space: pre-wrap; word-break: break-word; margin-top: 8px; }
             .sw-shoppe { display: flex; align-items: center; justify-content: space-between; background: white; border: 1px solid #e5e5ea; border-radius: 10px; padding: 12px 16px; margin-bottom: 8px; }
             .sw-shoppe-left { display: flex; flex-direction: column; gap: 2px; }
             .sw-shoppe-name { font-weight: 600; font-size: 15px; }
@@ -57,11 +57,15 @@
             <div class="sw-card">
               <div class="sw-step">
                 <div class="sw-step-num">1</div>
-                <div class="sw-step-body"><strong>Ask the wiki owner to register you.</strong> They'll use the form at the bottom of this page and give you a <code>uuid</code> and <code>emojicode</code> — your shoppe's identity.</div>
+                <div class="sw-step-body"><strong>Ask the wiki owner to register you.</strong> They'll download a <strong>starter bundle</strong> — a zip with your signing key, a template folder structure, and the <code>shoppe-sign.js</code> utility. Run <code>node shoppe-sign.js init</code> to store your key securely.</div>
               </div>
               <div class="sw-step">
                 <div class="sw-step-num">2</div>
-                <div class="sw-step-body"><strong>Build your shoppe folder</strong> with this structure, then zip the whole thing:
+                <div class="sw-step-body"><strong>Set up payouts</strong> by running <code>node shoppe-sign.js payouts</code>. This opens Stripe Connect onboarding so you can receive payments. Do this once before your first sale.</div>
+              </div>
+              <div class="sw-step">
+                <div class="sw-step-num">3</div>
+                <div class="sw-step-body"><strong>Build your shoppe folder</strong> with this structure:
                   <div class="sw-tree">my-shoppe.zip
   manifest.json       ← { "uuid": "…", "emojicode": "…", "name": "My Shoppe" }
   books/
@@ -94,16 +98,36 @@
   products/
     T-Shirt/          ← subfolder = physical product
       cover.jpg
-      info.json       ← { "title": "…", "description": "…", "price": 25, "shipping": 5 }</div>
+      info.json       ← { "title": "…", "description": "…", "price": 25, "shipping": 5 }
+  appointments/
+    Office Hours/     ← subfolder = bookable appointment type
+      cover.jpg
+      info.json       ← { "title": "…", "description": "…", "price": 0, "duration": 30,
+                           "timezone": "America/Chicago", "advanceDays": 21,
+                           "availability": [
+                             { "day": "Monday", "slots": ["09:00", "10:00", "11:00"] },
+                             { "day": "Friday", "slots": ["14:00", "15:00"] }
+                           ] }
+  subscriptions/
+    Bronze Tier/      ← subfolder = infuse tier
+      cover.jpg
+      info.json       ← { "title": "…", "description": "…", "price": 500,
+                           "renewalDays": 30,
+                           "benefits": ["Early access", "Monthly exclusive track"] }
+      bonus.mp3       ← any extra files become exclusive content for infusers</div>
                 </div>
               </div>
               <div class="sw-step">
-                <div class="sw-step-num">3</div>
-                <div class="sw-step-body"><strong>Drag your .zip onto the upload zone below.</strong> Your goods will be registered and your shoppe will go live immediately.</div>
+                <div class="sw-step-num">4</div>
+                <div class="sw-step-body"><strong>Run <code>node shoppe-sign.js</code></strong> from inside your shoppe folder. This signs your manifest and creates an <code>upload.zip</code> next to the folder.</div>
               </div>
               <div class="sw-step">
-                <div class="sw-step-num">4</div>
-                <div class="sw-step-body"><strong>To update your shoppe</strong>, just rebuild your folder and upload a new archive — existing items will be overwritten and new ones added.</div>
+                <div class="sw-step-num">5</div>
+                <div class="sw-step-body"><strong>Drag <code>upload.zip</code> onto the upload zone below.</strong> Your goods will be registered and your shoppe will go live immediately.</div>
+              </div>
+              <div class="sw-step">
+                <div class="sw-step-num">6</div>
+                <div class="sw-step-body"><strong>To update your shoppe</strong>, add content to your folder and run <code>node shoppe-sign.js</code> again — existing items are overwritten, new ones added.</div>
               </div>
             </div>
           </div>
@@ -113,7 +137,7 @@
             <h3>Upload your archive</h3>
             <div class="sw-drop" id="sw-drop">
               <div style="font-size:40px">📦</div>
-              <p>Drag and drop your .zip here, or click to browse.<br>Your <code>manifest.json</code> must contain the <code>uuid</code> and <code>emojicode</code> you were given.</p>
+              <p>Drag and drop your signed <code>upload.zip</code> here, or click to browse.<br>Run <code>node shoppe-sign.js</code> in your shoppe folder to create it.</p>
               <button class="sw-btn sw-btn-blue" id="sw-browse-btn">Choose Archive</button>
               <input type="file" id="sw-file-input" accept=".zip" style="display:none">
             </div>
@@ -308,10 +332,14 @@
       if (!result.success) throw new Error(result.error || 'Registration failed');
 
       nameInput.value = '';
+      const bundleUrl = result.bundleToken ? `/plugin/shoppe/bundle/${result.bundleToken}` : null;
       showStatus(container, '#sw-register-status',
-        `✅ Registered! Give these to the shoppe owner:<br>
-         UUID: <code>${result.tenant.uuid}</code><br>
-         Emojicode: <strong>${result.tenant.emojicode}</strong>`,
+        `✅ <strong>${result.tenant.name}</strong> registered!<br>
+         Emojicode: <strong>${result.tenant.emojicode}</strong><br><br>
+         ${bundleUrl
+           ? `<a href="${bundleUrl}" class="sw-btn sw-btn-green" style="display:inline-block;text-decoration:none;margin-bottom:8px;">⬇️ Download Starter Bundle</a><br>
+              <span style="font-size:12px;color:#555;">Hand this zip to the shoppe owner. The download link expires in 15 minutes and works only once.</span>`
+           : `UUID: <code>${result.tenant.uuid}</code>`}`,
         'success');
       loadDirectory(container);
     } catch (err) {

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "wiki-plugin-shoppe",
-  "version": "0.0.21",
+  "version": "0.0.23",
   "description": "Multi-tenant digital goods shoppe for federated wiki, powered by Sanora",
   "keywords": [
     "wiki",

package/server/scripts/shoppe-sign.js

@@ -0,0 +1,369 @@
+#!/usr/bin/env node
+'use strict';
+
+/**
+ * shoppe-sign.js — Shoppe archive signing utility
+ *
+ * Commands:
+ *   node shoppe-sign.js init            First run: moves shoppe-key.json to ~/.shoppe/keys/
+ *                                       and removes it from this directory.
+ *
+ *   node shoppe-sign.js                 Signs manifest.json and creates a ready-to-upload zip.
+ *
+ *   node shoppe-sign.js orders          Generates a signed orders URL (opens in browser).
+ *
+ *   node shoppe-sign.js payouts         Opens Stripe Connect Express onboarding.
+ *
+ * Requires Node.js 16+ and sessionless-node (run `npm install` once).
+ */
+
+const fs   = require('fs');
+const path = require('path');
+const os   = require('os');
+const { execSync } = require('child_process');
+
+// ── Paths ────────────────────────────────────────────────────────────────────
+
+const SHOPPE_DIR = __dirname;
+const KEYS_DIR   = path.join(os.homedir(), '.shoppe', 'keys');
+const MANIFEST   = path.join(SHOPPE_DIR, 'manifest.json');
+const LOCAL_KEY  = path.join(SHOPPE_DIR, 'shoppe-key.json');
+
+// ── Helpers ──────────────────────────────────────────────────────────────────
+
+function ensureDir(dir) {
+  if (!fs.existsSync(dir)) fs.mkdirSync(dir, { recursive: true });
+}
+
+function readManifest() {
+  if (!fs.existsSync(MANIFEST)) {
+    console.error('❌  manifest.json not found in:', SHOPPE_DIR);
+    process.exit(1);
+  }
+  try {
+    return JSON.parse(fs.readFileSync(MANIFEST, 'utf8'));
+  } catch (err) {
+    console.error('❌  manifest.json is not valid JSON:', err.message);
+    process.exit(1);
+  }
+}
+
+function keyFilePath(uuid) {
+  return path.join(KEYS_DIR, `${uuid}.json`);
+}
+
+function loadStoredKey(uuid) {
+  const kp = keyFilePath(uuid);
+  if (!fs.existsSync(kp)) {
+    console.error('❌  No signing key found at:', kp);
+    console.error('   If this is a new shoppe run:  node shoppe-sign.js init');
+    process.exit(1);
+  }
+  try {
+    return JSON.parse(fs.readFileSync(kp, 'utf8'));
+  } catch (err) {
+    console.error('❌  Key file is corrupted:', err.message);
+    process.exit(1);
+  }
+}
+
+// ── init — move key to secure storage ───────────────────────────────────────
+// This command intentionally requires no npm install so it works immediately
+// after unzipping the starter bundle.
+
+function init() {
+  const manifest = readManifest();
+  const uuid = manifest.uuid;
+
+  if (!fs.existsSync(LOCAL_KEY)) {
+    const kp = keyFilePath(uuid);
+    if (fs.existsSync(kp)) {
+      console.log('✅  Already initialized. Your key is at:');
+      console.log('   ', kp);
+      console.log('\nWhenever you want to upload, run:  node shoppe-sign.js');
+    } else {
+      console.error('❌  shoppe-key.json not found and no stored key exists.');
+      console.error('   Download a fresh starter bundle from your wiki.');
+    }
+    return;
+  }
+
+  let keyData;
+  try {
+    keyData = JSON.parse(fs.readFileSync(LOCAL_KEY, 'utf8'));
+  } catch (err) {
+    console.error('❌  shoppe-key.json is not valid JSON:', err.message);
+    process.exit(1);
+  }
+
+  if (!keyData.privateKey || !keyData.pubKey) {
+    console.error('❌  shoppe-key.json is missing privateKey or pubKey fields.');
+    process.exit(1);
+  }
+
+  ensureDir(KEYS_DIR);
+  const kp = keyFilePath(uuid);
+
+  // chmod 600 equivalent — silently ignored on Windows
+  fs.writeFileSync(kp, JSON.stringify(keyData, null, 2), { mode: 0o600 });
+  fs.unlinkSync(LOCAL_KEY);
+
+  console.log('✅  Key stored at:');
+  console.log('   ', kp);
+  console.log('   shoppe-key.json has been removed from this folder.\n');
+  console.log('Next steps:');
+  console.log('  npm install           (one-time, installs sessionless-node)');
+  console.log('  node shoppe-sign.js   (sign and zip whenever you want to upload)');
+}
+
+// ── sign — sign manifest and create upload zip ───────────────────────────────
+
+async function sign() {
+  // Require sessionless-node — give a clear error if not yet installed
+  let sessionless;
+  try {
+    sessionless = require('sessionless-node');
+  } catch (err) {
+    console.error('❌  sessionless-node is not installed.');
+    console.error('   Run: npm install');
+    process.exit(1);
+  }
+
+  const manifest = readManifest();
+
+  if (!manifest.uuid) {
+    console.error('❌  manifest.json is missing uuid.');
+    process.exit(1);
+  }
+
+  if (fs.existsSync(LOCAL_KEY)) {
+    console.error('⚠️   shoppe-key.json is still in this folder.');
+    console.error('   Run  node shoppe-sign.js init  to store it securely first.');
+    process.exit(1);
+  }
+
+  const keyData = loadStoredKey(manifest.uuid);
+
+  // Sign with sessionless (secp256k1, message = timestamp + uuid)
+  const timestamp = Date.now().toString();
+  const message   = timestamp + manifest.uuid;
+
+  sessionless.getKeys = () => ({ pubKey: keyData.pubKey, privateKey: keyData.privateKey });
+  const signature = await sessionless.sign(message);
+
+  // Strip any previous signature fields, then write fresh ones
+  const { ownerPubKey: _a, timestamp: _b, signature: _c, ...cleanManifest } = manifest;
+  const signedManifest = { ...cleanManifest, ownerPubKey: keyData.pubKey, timestamp, signature };
+
+  fs.writeFileSync(MANIFEST, JSON.stringify(signedManifest, null, 2));
+  console.log('✅  manifest.json signed.');
+
+  createZip();
+}
+
+// ── zip ──────────────────────────────────────────────────────────────────────
+
+function createZip() {
+  // Place the zip *next to* the shoppe folder so it can't include itself
+  const folderName = path.basename(SHOPPE_DIR);
+  const parentDir  = path.dirname(SHOPPE_DIR);
+  const outputZip  = path.join(parentDir, `${folderName}-upload.zip`);
+
+  if (fs.existsSync(outputZip)) {
+    try { fs.unlinkSync(outputZip); } catch (_) {}
+  }
+
+  console.log('\n📦  Creating upload archive...');
+  try {
+    if (process.platform === 'win32') {
+      // Collect items to include (exclude shoppe-key.json if somehow still present)
+      const items = fs.readdirSync(SHOPPE_DIR)
+        .filter(f => f !== 'shoppe-key.json')
+        .map(f => `"${path.join(SHOPPE_DIR, f).replace(/"/g, '`"')}"`)
+        .join(',');
+      const psCmd = `Compress-Archive -Path @(${items}) -DestinationPath "${outputZip.replace(/\\/g, '\\\\')}" -Force`;
+      execSync(`powershell -NoProfile -Command "${psCmd}"`, { stdio: 'pipe' });
+    } else {
+      execSync(
+        `zip -r "${outputZip}" . -x "*/shoppe-key.json"`,
+        { cwd: SHOPPE_DIR, stdio: 'pipe' }
+      );
+    }
+    console.log(`✅  Created: ${path.basename(outputZip)}`);
+    console.log(`   Location: ${outputZip}`);
+    console.log('\n   Drag that file onto your wiki\'s shoppe plugin to upload.');
+  } catch (err) {
+    console.log('⚠️   Could not auto-create zip:', err.message);
+    console.log('\nZip this folder manually (excluding shoppe-key.json):');
+    if (process.platform !== 'win32') {
+      console.log(`  cd "${parentDir}"`);
+      console.log(`  zip -r "${path.basename(outputZip)}" "${folderName}" -x "*/shoppe-key.json"`);
+    } else {
+      console.log('  Right-click the folder in File Explorer → Send to → Compressed folder');
+    }
+  }
+}
+
+// ── orders — generate a signed orders URL ────────────────────────────────────
+
+async function orders() {
+  let sessionless;
+  try {
+    sessionless = require('sessionless-node');
+  } catch (err) {
+    console.error('❌  sessionless-node is not installed.');
+    console.error('   Run: npm install');
+    process.exit(1);
+  }
+
+  const manifest = readManifest();
+
+  if (!manifest.uuid) {
+    console.error('❌  manifest.json is missing uuid.');
+    process.exit(1);
+  }
+
+  if (fs.existsSync(LOCAL_KEY)) {
+    console.error('⚠️   shoppe-key.json is still in this folder.');
+    console.error('   Run  node shoppe-sign.js init  first.');
+    process.exit(1);
+  }
+
+  const keyData = loadStoredKey(manifest.uuid);
+
+  const timestamp = Date.now().toString();
+  const message   = timestamp + manifest.uuid;
+
+  sessionless.getKeys = () => ({ pubKey: keyData.pubKey, privateKey: keyData.privateKey });
+  const signature = await sessionless.sign(message);
+
+  // Determine base URL: manifest.wikiUrl, CLI argument, or just show the path
+  const wikiUrlArg = process.argv[3];
+  const baseUrl    = wikiUrlArg
+    ? wikiUrlArg.replace(/\/+$/, '')
+    : manifest.wikiUrl
+      ? manifest.wikiUrl.replace(/\/orders.*$/, '') // strip any existing /orders path
+      : null;
+
+  const ordersPath = `/plugin/shoppe/${manifest.uuid}/orders?timestamp=${timestamp}&signature=${encodeURIComponent(signature)}`;
+  const fullUrl    = baseUrl ? `${baseUrl}/orders?timestamp=${timestamp}&signature=${encodeURIComponent(signature)}` : null;
+
+  console.log('\n🔑  Signed orders URL (valid for 5 minutes):\n');
+  if (fullUrl) {
+    console.log('   ' + fullUrl);
+  } else {
+    console.log('   Path: ' + ordersPath);
+    console.log('\n   Prepend your wiki URL, e.g.:');
+    console.log('   https://mywiki.com' + ordersPath);
+    console.log('\n   Or pass your wiki URL as an argument next time:');
+    console.log('   node shoppe-sign.js orders https://mywiki.com');
+  }
+
+  // Try to open in the default browser
+  if (fullUrl) {
+    console.log('\n   Opening in browser...');
+    try {
+      const open = process.platform === 'win32' ? 'start' :
+                   process.platform === 'darwin' ? 'open' : 'xdg-open';
+      execSync(`${open} "${fullUrl}"`, { stdio: 'ignore' });
+    } catch (_) {
+      // Browser open failed — URL is still printed above
+    }
+  }
+  console.log('');
+}
+
+// ── payouts — open Stripe Connect Express onboarding ─────────────────────────
+
+async function payouts() {
+  let sessionless;
+  try {
+    sessionless = require('sessionless-node');
+  } catch (err) {
+    console.error('❌  sessionless-node is not installed.');
+    console.error('   Run: npm install');
+    process.exit(1);
+  }
+
+  const manifest = readManifest();
+
+  if (!manifest.uuid) {
+    console.error('❌  manifest.json is missing uuid.');
+    process.exit(1);
+  }
+
+  if (fs.existsSync(LOCAL_KEY)) {
+    console.error('⚠️   shoppe-key.json is still in this folder.');
+    console.error('   Run  node shoppe-sign.js init  first.');
+    process.exit(1);
+  }
+
+  const keyData = loadStoredKey(manifest.uuid);
+
+  const timestamp = Date.now().toString();
+  const message   = timestamp + manifest.uuid;
+
+  sessionless.getKeys = () => ({ pubKey: keyData.pubKey, privateKey: keyData.privateKey });
+  const signature = await sessionless.sign(message);
+
+  // Determine base URL: manifest.wikiUrl, CLI argument, or just show the path
+  const wikiUrlArg = process.argv[3];
+  const baseUrl    = wikiUrlArg
+    ? wikiUrlArg.replace(/\/+$/, '')
+    : manifest.wikiUrl
+      ? manifest.wikiUrl.replace(/\/payouts.*$/, '') // strip any existing /payouts path
+      : null;
+
+  const payoutsPath = `/plugin/shoppe/${manifest.uuid}/payouts?timestamp=${timestamp}&signature=${encodeURIComponent(signature)}`;
+  const fullUrl     = baseUrl ? `${baseUrl}/payouts?timestamp=${timestamp}&signature=${encodeURIComponent(signature)}` : null;
+
+  console.log('\n💳  Stripe Connect onboarding URL (valid for 5 minutes):\n');
+  if (fullUrl) {
+    console.log('   ' + fullUrl);
+  } else {
+    console.log('   Path: ' + payoutsPath);
+    console.log('\n   Prepend your wiki URL, e.g.:');
+    console.log('   https://mywiki.com' + payoutsPath);
+    console.log('\n   Or pass your wiki URL as an argument next time:');
+    console.log('   node shoppe-sign.js payouts https://mywiki.com');
+  }
+
+  // Try to open in the default browser
+  if (fullUrl) {
+    console.log('\n   Opening in browser...');
+    try {
+      const open = process.platform === 'win32' ? 'start' :
+                   process.platform === 'darwin' ? 'open' : 'xdg-open';
+      execSync(`${open} "${fullUrl}"`, { stdio: 'ignore' });
+    } catch (_) {
+      // Browser open failed — URL is still printed above
+    }
+  }
+  console.log('');
+}
+
+// ── main ─────────────────────────────────────────────────────────────────────
+
+const command = process.argv[2];
+if (command === 'init') {
+  init();
+} else if (command === 'orders') {
+  orders().catch(err => {
+    console.error('❌ ', err.message);
+    process.exit(1);
+  });
+} else if (command === 'payouts') {
+  payouts().catch(err => {
+    console.error('❌ ', err.message);
+    process.exit(1);
+  });
+} else if (command === undefined) {
+  sign().catch(err => {
+    console.error('❌ ', err.message);
+    process.exit(1);
+  });
+} else {
+  console.error(`Unknown command: ${command}`);
+  console.error('Usage:  node shoppe-sign.js [init | orders [wiki-url] | payouts [wiki-url]]');
+  process.exit(1);
+}